CVE-2024-12828 PoC — Webmin 操作系统命令注入漏洞

Source

https://github.com/fanjm2025-jeremy/CVE-2024-12828-PoC

Associated Vulnerability

Title:Webmin 操作系统命令注入漏洞 (CVE-2024-12828)
Description:Webmin是Webmin社区的一套基于Web的用于类Unix操作系统中的系统管理工具。 Webmin存在操作系统命令注入漏洞，该漏洞源于对用户提供的字符串在执行系统调用前缺乏适当的验证，导致CGI请求处理中的命令注入，允许经过身份验证的远程攻击者执行任意代码。

Description

Webmin CGI Command Injection Remote Code Execution Vulnerability

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!